Someone broke my WPA2 encryption and was stealing my internets

Discussion in 'OT Technology' started by Dnepr, Dec 7, 2007.

  1. Dnepr

    Dnepr Guest

    :wtc: I only caught it today.



    I got :Owned: by only checking my router logs on monthly basis.


    Fuck, I completely shut off wirseless for now :mad:


    I was only using a 10 character pass :wtc:
     
  2. Sexual Vanilla

    Sexual Vanilla New Member

    Joined:
    May 23, 2005
    Messages:
    6,305
    Likes Received:
    0
    Location:
    South Carolina
    I highly doubt they broke the encryption...unless they knew or guessed by sheer luck your passkey.
     
  3. peerk

    peerk New Member

    Joined:
    Mar 14, 2005
    Messages:
    984
    Likes Received:
    0
    What was the key?
     
  4. Hate Crime

    Hate Crime Don't Hate OT Supporter

    Joined:
    Mar 12, 2006
    Messages:
    5,255
    Likes Received:
    0
    Location:
    Minnesota
    Most likely you were seeing activity from open programs connecting online...
     
  5. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    Does it matter? Unless you're maxing out your bandwidth by yourself, you're paying for service that you're not using, and it doesn't matter if anyone else is mooching.

    Maybe it was some poor smart kid who's looking up stuff for book reports, and he can't get internet at home any other way. Now he's going to grow up to be a drug dealer and it's all your fault, you selfish bastard.
     
  6. Doc Brown

    Doc Brown Don't make me make you my hobby

    Joined:
    Mar 31, 2006
    Messages:
    16,404
    Likes Received:
    0
    Location:
    Ohio
    LMFAO!!

    [​IMG]
     
  7. Peyomp

    Peyomp New Member

    Joined:
    Jan 11, 2002
    Messages:
    14,017
    Likes Received:
    0
    1) Leaving your wifi open is only polite. Closing it is rude.

    2) I find it hard to believe that someone cracked your WPA2, even with a 10 character password. More details? What was the password?
     
  8. CyberBullets

    CyberBullets I reach to the sky, and call out your name. If I c

    Joined:
    Nov 13, 2001
    Messages:
    11,865
    Likes Received:
    0
    Location:
    BC, Canada/Stockholm, Sweden
    1234567890 :o
     
  9. Peyomp

    Peyomp New Member

    Joined:
    Jan 11, 2002
    Messages:
    14,017
    Likes Received:
    0
    I'm surprised people even bother a brute force attack against WPA2. Are there utilities to do this?

    With that pass, I guess someone might have gotten lucky.
     
  10. dissonance

    dissonance reset OT Supporter

    Joined:
    May 23, 2006
    Messages:
    5,652
    Likes Received:
    1
    Location:
    KS
    I disagree. With all the copyright lawsuits and shit. I don't want to be liable for someone else's downloads and any other illegal things they do.
     
  11. Stilgar1973

    Stilgar1973 New Member

    Joined:
    Aug 12, 2006
    Messages:
    8,533
    Likes Received:
    0
    It matters a TON.

    Example A)
    Someone is doing P2P filesharing off your wifi connection.
    The RIAA will only go so far as the IP address of the router. You own the connection. You will be stuck with the bill.

    Example B)
    They are downloading child porn.
    Same answer as before. You will be at the mercy of the police. Do they understand that your connection was open and that the IP address can be the gateway for many, many computers within your subnetwork?
    Or do they merely see an IP address and think, "1 IP = 1 computer" and assume you deleted the child porn of your PC BEFORE they busted down your door and published your face in the local papers.

    Opening your Wifi for the world to see is for SUCKERS.
     
  12. Dnepr

    Dnepr Guest

    Something like that. :embd:


    What I noticed is in logs my router was giving a DHCP lease to something that I wasnt too sure about.

    I checked the MAC address and it showed Abit as a manufacturer, I know not exactly reliable but it set off a warning flag... since I dont own anything that is made by Abit or uses network equipment made by Abit.


    All PC's, laptops in my house are accounted for, so that left SOMETHING that wasnt in my house :mad:

    Turning off wireless completely basically removed this :hs:


    Next time I need it, ill generate a 63 character long random generated password :o
    p.s.

    I'm not a network guru or anything :o
     
    Last edited by a moderator: Dec 7, 2007
  13. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    That's when you demonstrate in court that the router logs show a MAC address that belongs to a piece of equipment owned by your neighbor.
     
  14. Stilgar1973

    Stilgar1973 New Member

    Joined:
    Aug 12, 2006
    Messages:
    8,533
    Likes Received:
    0
    That is the problem. I don't want to have to spend the money to defend myself in court.

    If you are rich enough to afford the attorney fees and mad enough fish for a letter and a phone call from the RIAA then I say go for it.

    I am neither.

    And leaving my router open to pedophiles and P2P kiddies is a really great way to generate a phone call and a letter from the RIAA.

    Securing your connection is the first step in defending yourself from having to go to court in the first place.

    But you are correct. Logs of the mac addresses and such would make a decent defense.
     
  15. Stilgar1973

    Stilgar1973 New Member

    Joined:
    Aug 12, 2006
    Messages:
    8,533
    Likes Received:
    0
    You miss the point.

    A MAC address is physically tied to your network card.

    Now a MAC address CAN be spoofed.

    I think what the poster was suggesting was that you go in to court and you say, 'This is the Mac address of Pedo-bear. These are the Mac addresses of all the devices I own. Therefore Pedo-Bear came from outside my house.'.

    The big problem I see with that argument is that you can easily spoof MAC addresses. If the prosecutor does his homework he could demostrate that your MAC address can be whatever the hell you want it to be.
    But then the defense can ask if anything was actually found on his machine and since nothing was.....

    You can go back and forth. But I don't think the point the poster was making was that you could catch the guy.

    Also I just came up with a third reason to secure your network.

    #3: Getting onto your network is the first step in stealing your data.
     
  16. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    You can't permanently spoof a MAC address. You can always tell the device to revert to the MAC address that's burned into its ROM.
     
  17. Stilgar1973

    Stilgar1973 New Member

    Joined:
    Aug 12, 2006
    Messages:
    8,533
    Likes Received:
    0

    You are making this WAY too hard on yourself.

    Step 1:
    BAN THAT MAC ADDRESS FROM YOUR NETWORK.
    (can be done through your routers software, no I can't walk you through it)

    Step 2:
    Change your security settings.
    Start with Not advertising the name of your network (that is done by simply checking or unchecking a box in your router software. Warning: If you do that you have to manually put the network name in all the devices that you need to get on your network.

    Change the name of your network.
    Pick a new network password. Make it longer. Include numbers, letters and symbols. Make it case sensitive.
    Example: l8T3r is more secure then: later as a password.
     
  18. Stilgar1973

    Stilgar1973 New Member

    Joined:
    Aug 12, 2006
    Messages:
    8,533
    Likes Received:
    0
    Oh absolutely true.
    I am just saying that if you had a nefarious hobby at home that you didn't want to get discovered you would, say use a laptop to enter the network for it and you would always spoof the MAC address when you did that activity.

    If you were not engaging in such an activity you would not spoof the address.
     
  19. Bencorn

    Bencorn New Member

    Joined:
    Sep 9, 2007
    Messages:
    463
    Likes Received:
    0
    Location:
    Ames, IA
    I used to torrent on my neighbors wireless so I could still use the internet uninhibited on my wireless. Worked for about a month before they figured out how to lock it. It was nice while it lasted and yes I admit, I'm a dick.
     
  20. Bencorn

    Bencorn New Member

    Joined:
    Sep 9, 2007
    Messages:
    463
    Likes Received:
    0
    Location:
    Ames, IA
    Only reason I lock my wireless is because I don't want people having access to my TV server. I do all the work and they reap the benefits? Fuck that.
     
  21. Harry Caray

    Harry Caray Fine purveyor of x.264, h.264 & TS HD-Video !!! HD

    Joined:
    Apr 19, 2001
    Messages:
    17,176
    Likes Received:
    5
    Location:
    MyCrews:4x4,SoCal,Tesla,EV's
    you guys are missing the point though.. for every IP packet generated,

    the originated MAC is encapsulated in the header of the IP "ACK" seq data.

    If you really want to, you can find out from anywhere which MAC addy it is
     
  22. Harry Caray

    Harry Caray Fine purveyor of x.264, h.264 & TS HD-Video !!! HD

    Joined:
    Apr 19, 2001
    Messages:
    17,176
    Likes Received:
    5
    Location:
    MyCrews:4x4,SoCal,Tesla,EV's
  23. whup

    whup I wish you had children and.. so that I could step

    Joined:
    Feb 12, 2007
    Messages:
    1,603
    Likes Received:
    0
    You should filter your wireless by mac address. i.e. allow nothing to connect to your wireless that isn't on your allowed list of mac addresses.
     
  24. Zac

    Zac New Member

    Joined:
    Nov 24, 2006
    Messages:
    151
    Likes Received:
    0
    ^ good idea but a pain in the ass if a friend comes over and needs to get on your wifi.

    fuck with the person stealing your internets...
    http://www.ex-parrot.com/~pete/upside-down-ternet.html
     
  25. dissonance

    dissonance reset OT Supporter

    Joined:
    May 23, 2006
    Messages:
    5,652
    Likes Received:
    1
    Location:
    KS
    That would be funny as hell. I bet they would think they have a virus or something and never consider that it was you.
     

Share This Page